All psad daemons reference the file psad.conf within /etc/psad, and this file follows a simple convention where comment lines begin with a hash (
#) mark, and configuration parameters are specified in a key-value format. For example, the
HOSTNAME variable in psad.conf defines the hostname of the system where psad is deployed:
### System hostname HOSTNAME psad.cipherdyne.org;
Each value for a configuration variable must be terminated with a semicolon to denote the end of the value string. This allows comments to be included on the same line after the semicolon to aid in documentation, as in this example:
WHOIS_TIMEOUT 60; ### seconds
Finally, psad variable values may contain subvariables that are expanded as psad parses its configuration. ...